Beta is now open - try it for free.

UpmindUpmindUpmind

Security, privacy & technology

Upmind is designed not only as a fortress for your data but as a tool that empowers you to securely run your own business and comply with all privacy legislation.

Empowering you to build security within your business.

We initially designed upmind as an internal tool for our own businesses. We had hundreds of staff working with hundreds of thousands of customers. At that scale we had to build systems that expected human error and enforced security.

European GDPR regulations then brought in the rights of customers to access and remove client data, as well as set rules on where that data could be shared.

Two Factor Authentication

2FA requires a login be authenticated with a secondary device, usually a mobile phone. This is optionally supported on all client and staff accounts. You can enforce usage of two factor authentication.

Delegate access

Your clients can also share access to their products and services by adding others as delegates. This means that clients do not need to share logins with others, and that the delegate access can be restricted. It also means that access can be revoked with the click of a button.

Granular staff permissions

Staff groups can be created, with permissions defined down to thousands of individual functionality calls. In multi-brand mode, staff can be assigned to just one brand.

For usability, staff seeing errors are told which functionality they are missing so they can easily feed back.

FraudMind™ fraud scanning

Every order is processed through our own FraudMind fraud prevention system which provides a score. You can set at which point orders should be blocked or rejected.

SCA & Tokenisation

We keep you up to date with card processing requirements such as secure card authentication automatically. You do not need to go through PCI checks yourself.

Logs and audits

All actions in upmind are logged permanently, against IP addresses and users.

Our architecture is scalable, secure and tested.

Upmind is a cloud based SAAS application which we run for you. It operates on Amazon Web Services. When you sign up for upmind we create you a new instance of our app, siloing your data and securely storing it away from other upmind customers.

Api First
Api First

Upmind is API-First, which means that all of our logic comes from our backend and is exposed via 1000+ API endpoints. Our frontend is a standalone application that interfaces with our own APIs.

Powered by Kubernetes

Our backend is built on top of Kubernetes spread across multiple AWS zones, with the API running at least one workload per-zone.

Self Healing

Kubernetes provides self-healing management, so any issues in the backend will be automatically routed around and fixed all without disrupting service.

New Build Security

New builds are automatically scanned for security issues, such as CVEs or misconfigurations. All data passed into the software gets scanned for viruses and validated before actual insertion

Global network

Frontend network provides 191 POPs in 33 countries with the client being routed to whichever is geographically closest

Information security policies

Please see our information security from our documentation.

ISMS 5: Third Party Suppliers Policy

All third parties that provide any services for Upmind Automation Limited are within the scope of this procedure.

ISMS 10: Anti-malware Security Standard

This document describes the Anti-malware Protection Security Standard and forms part of the overall Upmind Automation Limited’s Information Security Management System Framework.

ISMS 8: Major Incident Management Procedure

This major incident report procedure contains policies and guidelines necessary to identify and report system disruptions and security incidents, system disruptions are included since they are often the first indication of an incident.